RT 3854: Update apps/req

author Emilia Kasper <emilia@openssl.org>

Tue, 2 Feb 2016 16:12:45 +0000 (17:12 +0100)

committer Emilia Kasper <emilia@openssl.org>

Fri, 12 Feb 2016 13:09:26 +0000 (14:09 +0100)
author Emilia Kasper <emilia@openssl.org>
Tue, 2 Feb 2016 16:12:45 +0000 (17:12 +0100)
committer Emilia Kasper <emilia@openssl.org>
Fri, 12 Feb 2016 13:09:26 +0000 (14:09 +0100)
diff --git a/apps/req.c b/apps/req.c

index 3ced1706f0ec3ec0fb4f28848f9d8140d3f06fbc..66bcabcdac5337c3d9ae6f6bbc89add3d88a2e84 100644 (file)
--- a/apps/req.c
+++ b/apps/req.c
@@ -89,8 +89,8 @@
  #define STRING_MASK     "string_mask"
  #define UTF8_IN         "utf8"
  
-#define DEFAULT_KEY_LENGTH      512
-#define MIN_KEY_LENGTH          384
+#define DEFAULT_KEY_LENGTH      2048
+#define MIN_KEY_LENGTH          512
  
  static int make_REQ(X509_REQ *req, EVP_PKEY *pkey, char *dn, int mutlirdn,
                      int attribs, unsigned long chtype);
diff --git a/doc/apps/req.pod b/doc/apps/req.pod

index 9593dec2d5fa17206330a6550dfee8230c06eaa4..12a0687a8ad3bf69d21716e90df8e3e8fdf27cff 100644 (file)
--- a/doc/apps/req.pod
+++ b/doc/apps/req.pod
@@ -324,9 +324,12 @@ configuration file values.
  
  =item B<default_bits>
  
-This specifies the default key size in bits. If not specified then
-512 is used. It is used if the B<-new> option is used. It can be
-overridden by using the B<-newkey> option.
+Specifies the default key size in bits.
+
+This option is used in conjunction with the B<-new> option to generate
+a new key. It can be overridden by specifying an explicit key size in
+the B<-newkey> option. The smallest accepted key size is 512 bits. If
+no key size is specified then 2048 bits is used.
  
  =item B<default_keyfile>
author	Emilia Kasper <emilia@openssl.org>
	Tue, 2 Feb 2016 16:12:45 +0000 (17:12 +0100)
committer	Emilia Kasper <emilia@openssl.org>
	Fri, 12 Feb 2016 13:09:26 +0000 (14:09 +0100)
apps/req.c		patch \| blob \| history
doc/apps/req.pod		patch \| blob \| history